How a simple manual change in an AWS Security Group using the AWS Web Console can have bitter security consequences In this article, we’ll show how a simple manual change in an AWS Security Group using the AWS Web Console can have bitter security consequences. This one is based on many first-hand experiences and user feedback, in a production context with infrastructure-as-code. Allowing PgSQL (with Terraform)

How minimizing our attack surface with CircleCI Contexts helped us pass the Codecov bash uploader security issue unharmed What is Codecov For those who don’t know Codecov, it is an online platform for hosted code coverage reports and statistics founded in 2014. According to their website, over 29,000 organizations and more than 1 million developers use their tools. …

Here’s why we bring a new open source DevOps tool As we celebrated the initial release of driftctl 3 months ago, we certainly hoped for some sort of acknowledgement or favorable opinion from those who would use it, but we were not prepared for such a warm welcome. Reflecting on the first steps of the project, the fast moving star…

…You can’t catch ’em all — This talk covers three major topics: Infrastructure as Code: all the good intentions and the ideal world each of us expected when we started using it, and how it’s actually going in everyday’s Ops life. …

Learn how to use driftctl in a real-life environment, with multiple Terraform states and output filtering. Whether it’s a script gone wild, a bad API call from a trusted Lambda, or just the daily SNAFU, you want to know about the situation. Driftctl will do just that. In this guide, you…

When talking about infrastructure drift, you often get knowing glances and heated answers. Recording gaps in your infra between what you expected to be and the reality of what is, is a well known and widespread issue bothering hundreds of DevOps teams around the globe. …

How do you start managing several Terraform environments? — The need to manage multiple Terraform environments is very common. …

How to type Terraform variables? Declaring strings, lists, booleans, and objects within your Infrastructure code is possible and will save you from many mistakes. Here’s our take on how to deal with it. — How to type variables in Terraform? People often ask: can you, and should you declare variables in Terraform? One of the biggest issues I had in my “Chef” days was that I could multiply strings by booleans which used to create very nice issues in production.

Key Steps to a good quality for your Infrastructure Code. — Terraform code quality is important and there are a lot of tools to improve it. A lot of them are quite difficult to use. Here are a few tools that we find really useful and can be set up in minutes for you. Terraform code quality starts by the basics with Terraform Validate Terraform works with providers for each cloud…